Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.mft
File: AyhzUYaXwj6cPjemRrrRISNa10Q.mft (raw, json)
Hash identifier: a+wgctONJkdCl6zL9JJ2iz6kSCmG1AVyrGnva7uUWsU=
Subject key identifier: 9C:56:86:DD:8A:2C:91:52:4F:96:AA:63:AA:D1:4A:D8:66:02:A8:CC
Authority key identifier: 03:28:73:51:86:97:C2:3E:9C:3E:37:A6:46:BA:D1:21:23:5A:D7:44
Certificate issuer: /CN=032873518697c23e9c3e37a646bad121235ad744
Certificate serial: 0194BB28F340CC97775419DEADE3876C9D57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyhzUYaXwj6cPjemRrrRISNa10Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.mft
Manifest number: 142C
Signing time: Fri 31 Jan 2025 07:00:10 +0000
Manifest this update: Fri 31 Jan 2025 07:00:10 +0000
Manifest next update: Sat 01 Feb 2025 07:00:10 +0000
Files and hashes: 1: AyhzUYaXwj6cPjemRrrRISNa10Q.crl (hash: meMk8bZ+/qJKZYPM2R5GTecvuqnxBkyMRckCNzW5bxw=)
2: V2K-oZleXeUaxCNtSI8GJz8R-T8.roa (hash: BfQ/+c4yu8OqgDpQuVge6IJ1WfNKM140JuABCwOq8WA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyhzUYaXwj6cPjemRrrRISNa10Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:28:f3:40:cc:97:77:54:19:de:ad:e3:87:6c:9d:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032873518697c23e9c3e37a646bad121235ad744
Validity
Not Before: Jan 31 07:00:10 2025 GMT
Not After : Feb 1 07:00:10 2025 GMT
Subject: CN=9c5686dd8a2c91524f96aa63aad14ad86602a8cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8d:d3:df:9a:f8:62:e8:1f:f5:e2:87:1c:df:
1b:29:c8:ea:ec:a6:ed:82:58:dc:66:a7:f2:05:bc:
f9:8d:25:cb:e0:b8:fc:7a:d6:46:06:dd:c6:81:30:
18:4e:74:fe:2a:75:55:cb:4c:64:5b:d9:22:1b:f2:
a1:51:fe:bd:d1:2f:ff:6d:dd:8c:31:61:fb:47:4d:
be:56:95:8e:90:ed:cd:34:bb:13:be:f1:fa:8e:72:
c7:01:0a:0e:94:ce:1e:ec:60:85:15:32:2c:71:fc:
b3:a0:da:4e:a4:d2:51:fa:6f:b8:70:04:db:ee:32:
d3:d2:7c:9f:10:dd:2c:54:00:ba:c7:56:4b:62:a7:
7b:62:64:e3:47:05:c4:11:94:8e:b6:e6:db:07:2f:
3e:34:f8:8b:1d:e9:5d:3e:c1:02:8e:20:fc:d4:fb:
21:9d:6d:1f:c0:47:e7:d0:00:cd:66:a2:53:97:36:
c9:01:46:f3:7d:f9:88:b4:4b:2c:70:0e:30:4a:89:
a2:f9:8b:56:8e:79:41:2b:fd:3f:c5:bb:cc:17:8a:
ec:7b:03:79:3a:19:3b:1a:69:f9:8f:9d:c1:f5:5d:
7d:cf:6c:10:b3:e8:b8:b6:b4:34:7a:df:77:37:44:
4d:c6:e0:81:8f:49:61:85:f4:98:51:b9:54:7d:49:
ec:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:56:86:DD:8A:2C:91:52:4F:96:AA:63:AA:D1:4A:D8:66:02:A8:CC
X509v3 Authority Key Identifier:
keyid:03:28:73:51:86:97:C2:3E:9C:3E:37:A6:46:BA:D1:21:23:5A:D7:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyhzUYaXwj6cPjemRrrRISNa10Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:8b:0c:6a:11:e1:81:b1:fd:dd:eb:e2:99:d1:42:dc:f5:b3:
e4:06:8b:45:6f:c1:e5:ac:98:e5:a4:13:ed:08:54:e7:a8:29:
00:4d:d6:14:66:56:99:d2:a5:6e:f3:e5:ec:f1:e5:19:00:38:
c2:d4:7e:7a:4c:f4:5b:50:a5:69:15:0c:54:b9:6a:15:64:72:
e2:2d:82:eb:43:69:49:91:7a:cc:a5:a0:d7:dd:ec:6f:b7:f5:
b8:36:9c:13:4e:28:ff:33:68:9e:e4:8b:79:43:e2:47:8f:3a:
fc:4a:4a:c3:ee:ea:4f:6c:c9:dc:35:f1:69:6d:5b:23:7c:09:
90:f7:21:c2:9d:9e:40:c9:aa:ea:38:83:ad:c3:a9:d5:97:d8:
57:48:d4:13:1e:98:8c:4e:fe:6c:a6:79:12:2f:f8:eb:09:7a:
fe:06:c3:a6:15:43:3c:24:9c:2e:02:fc:76:90:8d:e9:1c:bd:
ac:07:3b:e6:df:35:6d:95:2d:c2:eb:eb:c6:29:7c:b2:b2:39:
62:2d:e4:83:14:52:4a:e6:1f:31:e4:d0:9e:ce:32:0a:7c:37:
c6:d1:bc:48:a9:52:4f:ca:a9:50:3a:27:3c:aa:ce:91:34:a8:
c9:5c:ba:29:23:b3:8f:c0:54:c8:ce:89:a0:ba:a2:7c:9e:0c:
b4:9d:de:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:27:15 2025 by rpki-client on console-fra.rpki-client.org